Overview

overview

3

Static

static

3

b563335781...6a.pdf

windows7-x64

1

b563335781...6a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    05-03-2024 18:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b563335781cb27cd8a4f1e0b428b3a6a.pdf

  • Size

    42KB

  • MD5

    b563335781cb27cd8a4f1e0b428b3a6a

  • SHA1

    db92a181bdde756aa57101e241120e036b1da368

  • SHA256

    b5854818b813d9be5313a459cf1013610dc8d4b46332c21d386a059d6ffbacd9

  • SHA512

    c6a41929f50c921efbf914d55b75567b32d8c92261eeefc1bbd765357ab68093558f2b6470a5879c575753f2375380ee5415d9ade01dc1dedb673c34b1969680

  • SSDEEP

    768:OAa9L0nYBsk9Dpy1RHMBbioyhwPTWbv3ncbJuYj84jmW+c1jJm:na9L0nX4y34i1uPTWbvMbsYonW+c11m

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b563335781cb27cd8a4f1e0b428b3a6a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2394d2de444beaddbbdfd161c717a34b

    SHA1

    985ea03f3ad2e8dd26714f49435e9b70d13a9d80

    SHA256

    815667c1d05693647c411d73906ada250cec29cc10c5351ce161a0a833b3d83d

    SHA512

    9d3ac36839038b8fefe3bed2c3950fa52979bf0f8544e4c7f82665b5072376166f35cf3b9aff0af0ddb74d6269e7b4c9180fb13c852dd036cfd9a1cd8a5f2c85

    Download Submit